The Hacker News

One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens

VS Code flaw exposes GitHub OAuth tokens via one-click attack on GitHub.dev, enabling private repo access and token theft.

Inside Pearlstone's changes to The Code project on South Lamar

Pearlstone Partners' CEO explains how the company pivoted the use of one of its newest properties in Austin called The Code ...

New York firm completes $48M makeover of aging Camden residential tower

Once plagued by crime and deferred maintenance, the 21-story building near the base of the Ben Franklin Bridge now boasts ...

Another bug hunter leaks Microsoft exploits in defiance of company’s handling of vulnerability disclosures

Yet another aggrieved bug hunter has leaked a vulnerability affecting a Microsoft product after becoming disillusioned with ...

Meet Wander, a StumbleUpon-inspired tool for discovering the ‘small web’

This open-source community project lets you create a StumbleUpon-like experience for recommending your favorite sites.
BankInfoSecurity

XenoRAT Espionage Campaign Targets Afghan Finance Ministry

A suspected Pakistan-linked cyberespionage group targeted Afghanistan's Ministry of Finance in a spear-phishing campaign ...
InfoQ

Next.js 16.2: 400% Faster Dev Startup, Faster Rendering, and Deeper Tooling for AI Agents

Vercel has released Next.js 16.2, featuring performance enhancements that make development startup 400% faster and rendering ...

I asked ChatGPT to help me learn coding in a 12-Sunday upskilling plan: AI gives me structured routine

I am a software engineer. But, there is one thing still missing from my profile: coding. I asked ChatGPT to prepare a ...
The Next Web

One click on GitHub.dev is all it takes to hand over your private repositories

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.

Cisco patches critical vulnerability in Unified CM and more

Cisco addresses security vulnerabilities in three products, including a critical one in Unified Communications Manager.
The Caledonian-Record

Lassie Raises $35M Led by Andreessen Horowitz to Build AI for Small Businesses to Run Themselves

Lassie, the company building autonomous systems to run small businesses, announced it has raised $35 million in Series A financing, bringing its total capital raised to $47 million. The round was led ...
The Verde Independent

Mingus Mountain trail event for National Trails Day

In celebration of National Trails Day, the Prescott National Forest is inviting volunteers to join staff for a trail ...